Skills
skills/autohandai/community-skills/copilot-coding-agent/Gen Agent Trust Hub

copilot-coding-agent

Pass

Audited by Gen Agent Trust Hub on May 9, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill creates an indirect prompt injection surface by processing GitHub issue content.
  • Ingestion points: Issue titles and bodies ingested via gh issue create and gh issue edit commands in SKILL.md.
  • Boundary markers: Absent. The instructions do not specify the use of delimiters or 'ignore' instructions for the content being processed.
  • Capability inventory: The skill triggers GitHub Actions and the Copilot Coding Agent, which can perform file writes, branch creation, and PR management.
  • Sanitization: No sanitization or validation of the issue content is mentioned or implemented in the prompt logic.
  • [COMMAND_EXECUTION]: The skill executes local shell scripts and CLI commands to manage GitHub workflows.
  • The instructions reference scripts/copilot-setup-workflow.sh and scripts/copilot-assign-issue.sh. These files were not included in the provided skill content, so their specific internal logic remains unverified.
  • The skill uses the gh (GitHub) CLI to perform repository actions, which is the intended functionality of the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
May 9, 2026, 02:51 AM